Hello, I am having difficulties getting AUTH to work for remote connections. I have had it working in the past, but don''t normally use my server for sending e-mail because it has a dynamic IP. Yesterday I found that it doesn''t seem to be working at all. I have tried with Thunderbird and Opera to send e-mail, both say something the server is not accepting SMTP connections or is not set up properly. I am using saslauthd for authentication. My setup is detailed here: http://chris.northfolk.ca/2005/10/01/exim4-setup/ The only difference is I added AUTH_SERVER_ALLOW_NOTLS_PASSWORDS = true to try to debug the problem. I used telnet to confirm that AUTH LOGIN works, but I can''t understand why my e-mail client won''t. I also found that when using telnet remotely, the welcome banner was very slow to come up ~60s. I set rfc1413_query_timeout = 0s to get around that. I don''t know if these are related. Thanks for any help. -- Chris
On Tue, Jan 16, 2007 at 01:57:38PM -0700, Chris Purves wrote:> I am having difficulties getting AUTH to work for remote connections. I > have had it working in the past, but don''t normally use my server for > sending e-mail because it has a dynamic IP. Yesterday I found that it > doesn''t seem to be working at all. I have tried with Thunderbird and > Opera to send e-mail, both say something the server is not accepting > SMTP connections or is not set up properly.Any chance that your ISP might be blocking incoming port 25? Does submission on port 587 have the same problem?> The only difference is I added AUTH_SERVER_ALLOW_NOTLS_PASSWORDS = true > to try to debug the problem. I used telnet to confirm that AUTH LOGIN > works, but I can''t understand why my e-mail client won''t.What do your logs say when a client tries to connect? Does an SMTP listener daemon started with -d give hints about what goes wrong? Is it possible to reproduce the issue with swaks or some other more transparent debugging tool? What''s your server''s IP address?> I also found that when using telnet remotely, the welcome banner was > very slow to come up ~60s. I set rfc1413_query_timeout = 0s to get > around that.If that didn''t help, you might be experiencing DNS issues. If it helped, I have no idea because rfc1413 timeout was always shorter than 30 seconds. Greetings Marc -- ----------------------------------------------------------------------------- Marc Haber | "I don''t trust Computers. They | Mailadresse im Header Mannheim, Germany | lose things." Winona Ryder | Fon: *49 621 72739834 Nordisch by Nature | How to make an American Quilt | Fax: *49 621 72739835
Marc Haber wrote:> On Tue, Jan 16, 2007 at 01:57:38PM -0700, Chris Purves wrote: >> I am having difficulties getting AUTH to work for remote connections. I >> have had it working in the past, but don''t normally use my server for >> sending e-mail because it has a dynamic IP. Yesterday I found that it >> doesn''t seem to be working at all. I have tried with Thunderbird and >> Opera to send e-mail, both say something the server is not accepting >> SMTP connections or is not set up properly. > > Any chance that your ISP might be blocking incoming port 25? Does > submission on port 587 have the same problem?The problem was along these lines. Port 25 seems to be blocked for outgoing on the network I was testing the e-mail client. I added listening on port 587 for situations like that and everything is working now; or rather it was always working and I just now realised it. Thanks for pointing out the most obvious reason. It could have taken weeks for my brain to turn on.> >> I also found that when using telnet remotely, the welcome banner was >> very slow to come up ~60s. I set rfc1413_query_timeout = 0s to get >> around that. > > If that didn''t help, you might be experiencing DNS issues. If it > helped, I have no idea because rfc1413 timeout was always shorter than > 30 seconds.Yes, you''re right. I reset to 30s and from some hosts it takes about 35s and from others about 3s. I must have made a mistake when I measured 60s. I have set the timeout to 5s, which I think is the default for exim 4.6 (I have 4.5). Thanks again. -- Chris
On Wed, Jan 17, 2007 at 01:51:46PM -0700, Chris Purves wrote:> Marc Haber wrote: > >Any chance that your ISP might be blocking incoming port 25? Does > >submission on port 587 have the same problem? > > The problem was along these lines. Port 25 seems to be blocked for > outgoing on the network I was testing the e-mail client.I see ;)> I added listening on port 587 for situations like that and > everything is working now; or rather it was always working and I > just now realised it. Thanks for pointing out the most obvious > reason. It could have taken weeks for my brain to turn on.You''re welcome.> Yes, you''re right. I reset to 30s and from some hosts it takes about > 35s and from others about 3s. I must have made a mistake when I > measured 60s. I have set the timeout to 5s, which I think is the > default for exim 4.6 (I have 4.5).That sounds sensible, and 5s is the timeout in later exim versions, right. Greetings Marc -- ----------------------------------------------------------------------------- Marc Haber | "I don''t trust Computers. They | Mailadresse im Header Mannheim, Germany | lose things." Winona Ryder | Fon: *49 621 72739834 Nordisch by Nature | How to make an American Quilt | Fax: *49 621 72739835